What should you do?

Professional Cloud Network Engineer V2 0 Comments

Your company offers a popular gaming service. Your instances are deployed with private IP addresses, and external access is granted through a global load balancer. You have recently engaged a traffic-scrubbing service and want to restrict your origin to allow connections only from the traffic-scrubbing service.

What should you do?
A . Create a Cloud Armor Security Policy that blocks all traffic except for the traffic-scrubbing
service.
B . Create a VPC Firewall rule that blocks all traffic except for the traffic-scrubbing service.
C . Create a VPC Service Control Perimeter that blocks all traffic except for the traffic-scrubbing service.
D . Create IP Tables firewall rules that block all traffic except for the traffic-scrubbing service.

Answer: A

Explanation:

Global load balancer will proxy the connection. thus no trace of session origin IP. you should use Cloud Armor to geofence your service.

https://cloud.google.com/load-balancing/docs/https

Latest Professional Cloud Network Engineer Dumps Valid Version with 79 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download Professional Cloud Network Engineer PDF    Professional Cloud Network Engineer Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments